Trust management services in relational databases

Authors:
Sabrina De Capitani di Vimercati;Sushil Jajodia;Stefano Paraboschi;Pierangela Samarati
Affiliations:
DTI - University of Milan, Crema - Italy;George Mason University, Fairfax, VA;DIGI - University of Bergamo, Dalmine - Italy;DTI - University of Milan, Crema - Italy
Venue:
ASIACCS '07 Proceedings of the 2nd ACM symposium on Information, computer and communications security
Year:
2007

Citing 13
Cited 4

Referee: trust management for Web applications

World Wide Web Journal - Special issue: Web security: a matter of trust
Using digital credentials on the World Wide Web

Journal of Computer Security - Special issue on security in the World Wide Web
A uniform framework for regulating service access and information release on the web

Journal of Computer Security
Supporting structured credentials and sensitive policies through interoperable strategies for automated trust negotiation

ACM Transactions on Information and System Security (TISSEC)
Access Control: Policies, Models, and Mechanisms

FOSAD '00 Revised versions of lectures given during the IFIP WG 1.7 International School on Foundations of Security Analysis and Design on Foundations of Security Analysis and Design: Tutorial Lectures
Distributed credential chain discovery in trust management

Journal of Computer Security
A Unified Scheme for Resource Protection in Automated Trust Negotiation

SP '03 Proceedings of the 2003 IEEE Symposium on Security and Privacy
Decentralized Trust Management

SP '96 Proceedings of the 1996 IEEE Symposium on Security and Privacy
A logic-based framework for attribute based access control

Proceedings of the 2004 ACM workshop on Formal methods in security engineering
Beyond proof-of-compliance: security analysis in trust management

Journal of the ACM (JACM)
Preventing attribute information leakage in automated trust negotiation

Proceedings of the 12th ACM conference on Computer and communications security
Automated trust negotiation using cryptographic credentials

Proceedings of the 12th ACM conference on Computer and communications security
An attribute graph based approach to map local access control policies to credential based access control policies

ICISS'05 Proceedings of the First international conference on Information Systems Security

Trust Management and Trust Negotiation in an Extension of SQL

Trustworthy Global Computing
Effective trust management through a hybrid logical and relational approach

ASIACCS '10 Proceedings of the 5th ACM Symposium on Information, Computer and Communications Security
Integrating trust management and access control in data-intensive Web applications

ACM Transactions on the Web (TWEB)
From MDM to DB2: a case study of security enforcement migration

DBSec'12 Proceedings of the 26th Annual IFIP WG 11.3 conference on Data and Applications Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

Trust management represents today a promising approach for supporting access control in open environments. While several approaches have been proposed for trust management and significant steps have been made in this direction, a major obstacle that still exists in the realization of the benefits of this paradigm is represented by the lack of adequate support in the DBMS.In this paper, we present a design that can be used to implement trust management within current relational DBMSs. We propose a trust model with a SQL syntax and illustrate the main issues arising in the implementation of the model in a relational DBMS. Specific attention is paid to the efficient verification of a delegation path for certificates. This effort permits a relatively inexpensive realization of the services of an advanced trust management model within current relational DBMSs.